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Doscrlption 

[0001] The present invention relates to a method for 
providing a secure communication between two devic- 
es, fn particular between devices used in a pay TV sys- 
tem. 

[0002] In a pay TV system each subscriber goneraliy 
has a decoder for descrambling the source component 
signal, wherein said decoder comprises a conditional 
access module and a smart card for decrypting entitle- 
ment control messages and entitlement management 
messages. In order to prevent unauthorized operation 
of the decoder for descrembling a source component 
signal it is important to prevent switching between an 
authorized and an unauthorized smart card for example. 
[0003] EP-A-0 426 252 discloses a method for provid- 
ing a secure communication between two devices and 
an application of this method in a pay TV system. In this 
known method the authenticity of a second device. I.e. 
a smart card, (s checked by a first device. 
[0004] US-A.5 029 207 discloses a method for pro- 
viding a secure communication between two devices 
and en application of this method in a pay TV system. 
In this Known method a first key ts transmitted In an en- 
crypted message from an encoder to a decoder end the 
decoder decrypts (his message to obtain the first key to 
decrypt the program signal. A secret serial number is 
used for encryption and decryption. There are no trans- 
missions from the decoder to the encoder, 
[0005] The invention alms to provide a method of the 
above-mentioned type wherein the communication be- 
tween two devices, such as the control access module 
and the smart card or the decoder and the conditional 
Bccess module, Is arranged in such a manner that 
switching between authorized end unauthorized devic- 
es is not possible. 

[OOOe] According to the invention a method is provid- 
ed, wherein a first device generates e random key (Ci) 
and transfers said key to a second device in a first mes- 
sage encrypted using a public key, wherein said eecond 
device decrypts the first encrypted message by means 
of a corresponding secret key to obtain said random key 
(Ci), wherein said random key is used to encrypt and 
decrypt further transmissions from said second to said 
first device. 

[0007] According to the Invention this method can be 
applied In a decoder for a pay TV system, wherein said 
decoder comprises a conditional access module and a 
smart card, wherein said method is applied to provide a 
secure communi-cation between the control access 
module and the smart card or between the decoder and 
the conditional acceae module. 
[0008] The invention further provides a decoder for a 
pay TV system, comprising a conditional access module 
and a smart card, said conditional access module com- 
prising means for generating a random key (Ci), means 
for encrypting said key In a first encrypted message us- 
ing a public key encryption method, means for transfer- 



|ng said first encrypted message to the smart card, said 
smart card comprising means for receiving and decrypt- 
ing said first encrypted message to obtain said random 
key, means for encrypting Uansmissions to the condi- 

s tlonei access module under said random key, said con- 
ditional access module having means to decrypt said 
transmissions received from the smart card. 
[0008] In a further embodiment of the invention, said 
decoder comprises a conditional access module and a 

10 smart card, wherein said decoder comprises means for 
generating a random key (01), means for encrypting said 
key In a first encrypted message using a public key en- 
cryption method, means for transFerIng cald first en- 
crypted message to the conditional access module, said 
conditional eccess module comprising means for re- 
ceiving and decrypting said first encrypted message to 
obtain said random key, means for encrypting transmis- 
sions to the decoder under said random key. said de- 
coder having means to decrypt said transmissions re- 

20 calved from the conditional access module. 

[0010] The invention will be further explained by ref- 
erence to the drawings In which an embodiment of the 
method of the invention Is explained as applied In a de- 
coder for a pay TV system. 

26 [0011] Fig. 1 shows a block diagram of an embodi- 
ment of the decoder according to the present invention. 
[0012] Fig. 2 shows a sequence of steps of an em- 
bodiment of the melhod of the Invention. 
[0013] Referring to ftg. 1 there Is shown in a very sche- 

3^ matical manner a block diagram of a decoder for a pay 
TV system, wherein digital Information signals are 
scrambled using a control word in accordance with the 
Eurocrypt standard for example. In this embodiment the 
decoder comprises a demodulator 1, a demulllploxor 2 

35 and a decompression unit 3. The decoder further com- 
prises a conditional access module or CAM 4 end a 
smart card 5 which can be inserted Into a connection 
slot of the conditional access module 4. Further the de- 
coder is provided with a microprocessor 6 for conflgu- 

<o ration and control purposes. 

[0014] The conditional access module 4 is provided 
with a descrambler unit 7 and a microprocessor 8 having 
a memory 9. The smart card 5 comprises a microproc- 
essor 10 having a memory 11, 

^5 [001 5] As the operation of the above-mentioned parts' 
of the decoder is not a part of the present Invention, this 
operation will not be described in detail. Typlcaily, the 
signal received by the demodulator 1 is a modulated da- 
ta stream between 950 MHz and 2050 MHz. The output 

so of the demodulator 1 1s a scrambled digital date stream 
which Is provided to the CAM 4 and the descrambler 7 
will be allowed to descramble this scrambled data 
stream assuming that an authorized smart card has 
been Inserted and the subscriber is entitled to receive 

55 the program. The descrambled data stream Is demulti- 
plexed by the demultiplexer 2 and decompressed and 
converted into the original analogue eudio and video 
signal by the decompression unit 3. 
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[0016] In a pay TV system the control word required 
for descrambling. Is transfDrred to ihe subscribers In so- 
called entitlement control messages comelnlng the con- 
trol word encrypted using a service key. This service key 
16 downloaded in the memory 11 of the smart card 5 by 
means of a eo^elled entitlement manegement mes- 
sage for example. During operation the CAM 4 transfers 
the entitlement control messages towards the micro- 
processor 10 of the smart card 5 so that the microproc- 
essor 10 can process the enlitiement control message 
and extract the control word. Thereafter the smart card 
5 returns the decrypted control word towards the CAM 

4 so that the deacrembler 7 is allowed to deacremble 
the digital data stream received from the demodulator 1. 
[0017] In order to prevent the use of en unauthorized 
emart card 5 in combination with the CAM 4 it fs Impor- 
tant to provide a secure communication between the 
CAM 4 and the smart card 5. According to the present 
Invention the following method is used to provide such 
a secure communication. The steps of this method are 
shown In fig. 2. When a smart card Is Inserted into the 
decoder, the microprocessor 8 of the CAM 4 will gener- 
ate two random numbers CI and A, The microprocessor 
8 will encrypt In a first message the random numbers CI 
and A under a public key of the CAM 4. The thus ob- 
tained first message is transferred to the smart card 5 
and the microprocessor 10 will decrypt this first mes- 
sage using the secret key of the CAM 4. Thereafter the 
microprocessor 10 will return a second massage to the 
CAM 4. said second message being the random number 
A encrypted under the number Ci used as encryption 
key. The microprocessor 8 of the CAM 4 decrypts this 
second message and verifies whether the random 
number A is correct. Assuming that the random number 
A is Indeed correct, so that It may be assumed that the 
inserted smart card 5 is an authorized smart card, the 
CAM 4 will then forward entitlement control messages 
containing the encrypted control word to the smart card 

5 which will process the entitlement control message 
and extract the control word in a conventional manner. 
However, in the return message towards the CAM 4» the 
smart card will forward the extracted control word en- 
crypted under the key Ci and these encrypted control 
words are decrypted by the microprocessor 8 using the 
same key Ci. As soon as one tries to replace the inserted 
smart card 5 by an other smart card, for example by 
switching from the authorized smart card 5 to an unau- 
thorized smart card, the CAM 4 will immediately estab- 
lish such change as the key CI will not be known to the 
new smart card, so that the CAM will no longer be able 
to descramble the return messages containing the con- 
trol word. Thereby the descrambler unit 7 will be disa- 
bled. 

[0018] The method described can be used in the 
same manner for providing a secure communication be- 
tween the CAM 4 and the decoder, wherein the same 
protocol as shown In fig. 2 Is followed. 
[0019] In summary It will be understood that if a new 



CAM 4 Is connected to the other decoder parts, the mi- 
croprocessor 6 of the decoder will generate the two ran- 
dom numbers Ci and A and as soon as the microproc- 
essor 6 has decrypted the second message received 
5 from the microprocessor 8 of the CAM 4, and has veri- 
fied that the random number A is correct, the key CI will 
be used In all transmissions between the CAM 4 and the 
microprocessor 6. 

[0020] The invention Is not restricted to the above-de- 
10 scribed embodiments which can be varied in a number 
of ways within the scope of the claims. As an example 
for a further embodiment the CAM (I.e. the descrembler) 
may be part of the decoder. The decoder would now 
challenge the smart card to aulhontlcato itself to obtain 
16 a secure communication between the smart card and 
the decoder. 
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Clfllma 

1, Method for providing a secure communication be- 
tween two devices (4, 5), wherein a first. device (4) 
generates a random key (CI) and transfers said key 
to e second device (5) In a first message encrypted 
using a public key. wherein said second device (5) 
decrypts the first encrypted message by means of 
a corresponding secret key to obtain said random 
key (C(). wherein said random key Is used to encrypt 
and decrypt transmissions from said second to said 
first device. 



2. Method according to claim 1 . wherein after decrypt- 
ing said encrypted message, said second device (5) 
first returns said random key (Ci) in a second en- 

^ crypted message with an authentication to said first 
device (4). ^ 

3. Method according to claim 2, wherein for providing 
said authentication said first device (4) further gen- 

<o erates a random number (A) and transfers this ran- 
dom number (A) together with said random key (CI) 
In said first encrypted message to the second de- 
vice (5), wherein the second device uses said ran- 
dom number (A) for authentication (n the second en- 

45 crypted message. 



Method according to claim 3. wherein said second 
device (5) encrypts said random number (A) under 
said random key (CI) to obtain said second encrypt- 
ed message. 



so 



66 



Application of the method of anyone of the preced- 
ing cialme in a decoder for e pay TV system, where- 
in said decoder comprises a conditional access 
module (CAM) (4) and a smart card (SC) (5). where- 
in said method is applied to provide a secure com- 
munication between the control access module (4) 
end the smart card (5). 
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B. Application of the method of anyone of claims 1-4 
In a decoder for a pay TV system, wherein eaid de- 
coder comprises a conditional access module 
(CAM) (4) end a 9mart card (SC) (5), wherein said 
method is applied to provide a secure communica- 
tion between the decoder and the conditional ac- 
cess module (4). 

7. Decoder for a pay TV system, comprising a condi- 
tional access module (4) and a smart card (5), said 
conditional access module comprising means (8) 
for generating a random key (CI), means (8) for en- 
crypting said l<ey in a first encrypted message using 
a public key encryption method, means (8) for trans- 
faring said First encrypted message to the smart 
card, said smart card (5) comprising means (10) for 
receiving and decrypting said first encrypted mes- 
sage to obtain said random key, means (10) for en- 
crypting transmissions to the conditional access 
module under said random kay, said conditional ac- 
cess module (4) having means (8) to decrypt said 
transmissions received from the smart card. 

6. Decoder according to claim 7, wharafn said smart 
card (5) comprises means (10) for returning said 
random key to the conditional access module in a 
second encrypted message with an authentication. 

9. Decoder according to claim 8, wherein said gener- 
ating means (8) of the conditional access module 
(4) further generates a rendom number which Is in- 
cluded in said first encrypted message, wherein the 
smart card (5) Is adapted to use said random 
number as authentication In the second encrypted 
message. 

10. Decoder for a pay TV system, comprising a condi- 
tional access module (4) and a smart card (5), 
wherein said decoder comprises means (6) for gen- 
erating a random key (CI), means (6) for encrypting 
said key In a first encrypted message using a public 
key encryption method, means (6) for transfering 
said first encrypted message to the conditional ac- 
cess module (4). said conditional access module 
comprising means (8) for receiving and decrypting 
said first encrypted message to obtain said random 
key, means (8) for encrypting transmissions to the 
decoder under said random key, said decoder hav- 
ing means (6) to decrypt said transmissions re- 
ceived from the conditional access module. 

11. Decoder according to claim 10, wherein said con- 
ditional access module (4) comprises means (8) for 
returning said random key to the decoder in a sec- 
ond encrypted message with an authentication. 

12. Decoder according to claim 11, wherein said gen- 
erating means (6) of the decoder further generates 



a random number which la included in said first en- 
crypted message, wherein tha conditional access 
module (4) is adapted to use said randoni number 
as authentication in the second encrypted mes- 
sage. 



PatentansprQche 

JO 1. Verfahren zur geslcherten Kommunikatlon zwi- 
schen zwel Gerfilen (4, 6) bel dem eln erstes Gerilt 
(4) einen ZufallsschlOssel (Ci) generiert und diesen 
SchlOesel an ein zwelles GerSt (5) In elner ersten 
Nachrlcht Qbertragt, die durch Benutzen elnas all- 

is gemein bekannten SchlOssels varschlOeselt ist. wo- 
bel dieses zweite Gerdte (5) die erste verschlCissel- 
te Nachrlchl entschlCisselt, mit Hllfe eines enlspre- 
chenden gehefmen SchlOssels. um den Zufalls- 
schlOssel (CI) zu erhalten. wobel dieser Zufails- 

^0 schlDssel benutzt wird, um Obertragungen von dem 
zwelten zu dem ersten Gerfitzu verschlCsseIn und 
entschlOsseln. 

2. Verfahren nach Anspruch 1. bel dem nach Ent- 
25 schlOsseln der verschlusselten Nachricht das zwei- 
te Geret (5) zuerst den ZufellsschlOssel (Ci) in einer 
zwelten verschlusselten Nachricht mIt elner Au- 
thentifizierung an das erste GerMe (4) zurOck- 
Schick!. 

30 

3. Verfahren nach Anspruch 2. bei dem fOr des Bereit- 
stelien dieser Authentifizierung das erste GerSt (4) 
ferner eine Zufallszlffer (A) generiert und diese Zu- 
fallsziffer (A) zusammen mit dem Zufallsschlussei 

3S (Ci) in der ersten verschltissatten Nachricht an das 
zweite Gerate (5) QbertrSgt» wobel das zweite Ger^t 
dIese Zufalisziffer (A) zur Authentifizierung in der 
zwelten verschlOsseiten Nachricht benutzt, 

^0 4. Verfahren nach Anspruch 3, bei dem das zweiieGe- 
rat (5) die Zufalisziffer (A) mIt dem ZufallsschlOssel 
(CI) verachlOsselt, um die zweite verschliisselte 
Nachricht zu erhaltan. 

<s s. Anwendung des Vorfahrens nach elnem dervdrhe- 
rigen AnsprGche bei einem Decoder ftjr eln Pay-TV 
System, bei dem dieser Decoder eln bedingtes Zu- 
grlffsmodul (CAM)(4) und eine Chlpkarte (SC)(5) 
mIt umfef^t. wobsi dieses Verfahren angewendet 

30 wird, um eine gesicherte Kommunikalion zwlschen 
demZugrlffskontrollmodul (4) und derChipkarte (5) 
bereltzusteilen. 

6. Anwendung des Verfahrens nach einem der An- 
55 spruche 1 bis 4 bei einem Decoder fur ein Pay-TV- 
System, bei dem dieser Decoder eln bedingtes Zu- 
griffsmodul (CAM)(4) und eine Chlpkarte (SC)(5) 
mit umfeflt, wobei dieses Verfahren angewendet 
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wird, um eino geslcherte Kommunikatlon zwteciien 
diesem Decoder und dem bedlngten ZugrifFsmoduf 
^4) bareltzustellen. 

7. Decoder ftir ein Pay-TV-Systam, eln bedlngtes Zu- 
griffsmodul (4) und eina Chipkarte (5) umfassand. 
wobel dieses bedingte Zugriffsmodul HDfsmlttel (8) 
zurGenerierung elnes ZufallsschlOssels (CI), Hilfs- 
mlltel (8) fur die Verschiasaelung dieses SchiOssels 
In elner ersten verschlOsselten Nachrlcht unter Ver- 
wendung elnea Verschlussefungsverfahrens mit 
allgemein bekannlom SchfGssel, Hilfsmittel (8) fOr 
die Obertragung dlesar ersten verschlusseltan 
Nachrlcht an die Chipkarte, wobei diese Chipkarte 
(5) Hilfsmittel (10) umfal^t fOr das Empfangen und 
EntschlQsseIn dieser ersten verschlOsselten Nach- 
rlcht, um den Zufaitsschlussel zu erhelten. und 
Hllfamittef(IO) fOrdle VerschlOsselungvonObertra- 
gungen an das bedingte Zugrlffemodul mit dem Zu- 
falloochlussel umfafit, wobei dieses bedingte Zu- 
griffsmodul (4) Hilfsmittel (8) besltzt, «m diese von 
dar Chipkarte erhaltenen Obertragungen zu ent^ 
schfOsseln. 

8. Decoder nach Anspruch 7, be! dam diese Chipkarte 
(5) Hilfsmittel (10) umfa&t fur das ZurQcKschicken 
dieses Zufallsschlussels zu dem bedlngten Zu- 
griffsmodul In einer zweiten verschlOsselten Nach- 
rlcht mit einar Beglaublgung. 

9. Decoder nach Anspruch 8, bei dem diese generie- 
randen Hilfsmittel (8) des bedlngten Zugrlffsmodula 
(4) fernerelne Zufallsziffer generlaren, welche enl- 
hallen Ist in der ersien verachlusselten Nachrlcht, 
wobei die Chipkarte (5) angepaflt wurde. diese Zu- 
fallsziffer als Authontlflzlerung in derzweiten ver- 
schlOsselten Nachrlcht zu benutzen. 

10. Decoder fQr eln Pay-TV-System, ein bedlngtes Zu- 
griffsmodul (4) und elne Chipkarte (5) umfassend, 
wobei dleser Decoder Hilfsmittel (6) fOr die Gene- 
rierung efnes ZufallsschlOssel (CI). Hilfsmittel (8) fUr 
die VerschiOsselung dieses SchiOssels in einer er- 
sten verschlCisserten Nachrlcht unter V^rwendung 
eines VorschlUssefungsverfahrens mit einem eltge- 
meln bekanntan SchiOssel. Hilfsmittel (6) fOr das 
Obenragen dieser ersten verschlOsselten Nach- 
richt an doa bedingte Zugriffsmodul (4), wobei die- 
ses bedingte Zugrlffemodul Hilfsmittel (S) umfaftt fOr 
das Empfangen und das EnlschlOsseln dieser er- 
sten verschlusselten Nachricht, um don Zufails- 
schiusselzuerhalten. und Hilfsmittel (8) ror des Ver- 
schlOsseIn von Obertragungen an den Decoder mit 
dlesem ZufallsschlOssel umfa&t, wobei dieser De- 
coder Hllfemfltel (6) bosltzt. um die von dem bedin- 
gen Zugriffsmodul empfangenen Obertragungen zu 
entschlusseln. 
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1 1 . Decoder nach Anspruch 1 0, fael dem d lesas beding- 
te Zugriffsmodul (4) Hilfsmittel (8) fur das ZurOck- 
schlcken dieses ZufallsschlOssels zu dam Decoder 
In einer zweiten verschlOsselten Nachrlcht mit elner 
Authentlflzlerung umfaflt. 

12. Decoder nach Anspruch 11, bei dem diese generle- 
renden Hilfsmittel (6) des Decoders ferner elne Zu- 
fallsziffer genorieren, welche enthalten let in der er- 
sten verschlOsselten Nachricht, wobei das bedlnfite 
Zugriffsmodul (4) angepaftt wurde, diese Zufallszif- 
fer a Is Authentifizierung In der zweiten verschiOs- 
selten Nachrlcht zu benutzen. 



Revendlcatlons 

1. Procddd destine k 6tabflr une communication sOre 
enlre deux disposltifa (4, 5), dans loquei'un premier 
disposltif (4) g^n^re une cl6 al^atotre (Ci) ettrens- 
f6re iadlte cl6 vers un second disposltif (5) dans un 
premier message crypl6 en utliiaant une cl6 publi- 
que, dans lequel ledit second dispositif (6) d^crypte 
le premier message crypte au moyen d'une ci6 se- 
crete correspondante afln d'obtenir iadlte eld aida- 
toire (Ci). dans lequel Iadlte cid aidatoire est utHls^e 
pour crypter el d^crypier des transmissions depuis 
ledit second dispositif vers ledit premier dispositif. 

2. Procdd6 seion la revendication 1 . dans lequel apr^s 
d^c/yptage dudit message crypte^ iedll second dis- 
positif (5) renvois tout d'abord ladite cle. al^atoire 
(CI) dans un second message crypto 'avec une 
authentiflcation vers ledit premier dispositif (4).. 

3. Proc^dd seion la revendication 2, dans lequel pour 
fournlr ladite authentlfication. ledit premier disposltif 
(4) g^ndre en outre un nombre al6atolre (A) et 
transf^re ce nombre al6atolre (A) en mftme temps 
que iadlte cie al6atolre (Ci) dans tedit premier mes- 
sage cryptd vers le second disposltif (5), dans le- 
quel le second dispositif utlllaa ledit nombre alda- 
toire (A) en vue d'une authsntificatlon dans le se- 
cond message crypto. 

4. Procdd6 seion la revendication 3. dans lequel fedit 
second dispositif (5) crypte tedit nombre el^aloire 
(A) sous Iadlte c\6 aldatoire (CI) pour obtenir ledit 
second message crypto. 

5. Application du proc6d6 seion Tune quelconque des 
revendlcatlons prdc6dentes dans un d^codeur des- 
tine d syst^me de tdldvlsion payant. dans lequel le- 
dit ddcodeur comprend un module d'acc68 condi- 
tionnel (CAM) (4) et une carte intelligente (SC) (5), 
dens iesquels ledit proc^dd est appliqud pour 6ta- 
blir une communication sOre entre le module d*ac- 
ces de commande (4) et la carte intelligente (6). 
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6. Applicalion du proc^dd selon Tune quejconquo dea 
ravendlcations 1^4 dans un ddcodeur destine d 
syst^me de t6ldvl6lon payent. dans lequet ledit d^- 
codeur comprend un module d'acc6s cx>ndltionnel 
(CAM) (4) Qt une carte intalllgente (SC) (6), dans 
iesquels ledIt proc^d6 estapp(lqu6 pour diablirune 
communication sOre entre le ddcodeur et le module 
d*accft6 condltionnel (4). 

7. D^codeur destine h un systdme de X^\Ms\or\ 
payant, comprenant un module d'acc66 condltion- 
nel (4) q{ une carta (ntelligente (5), iedit module 
d'accde conditionne! comprenant un moyen (8) des- 
tine k gdn6rar une cl6 Bl6atoire (CI), un moyen (3) 
defitln6 a crypter ladlte old dans un premier mesea* 
ge crypto en utilisanl un procddd de cryptage d c\6 
publique, un moyen (8) deatind d tranafSrer tedit 
premier message crypto vers la carle intelllgenie, 
ladlto carte Intelligente (5) comprenant un moyen 
(10) deatind ^ recevoir el a d^crypter (edit premier 
message crypto afln d'obtenir Isdite cI6 al6aTolre, 
un moyen (10) destind h crypter dea transmissions 
vers le module d'accde conditionne) sous ledite cl6 
al6atolre, ledit module d'accds conditJonnel (4) 
comportant un moyen (8) pour d6crypter lesditas 
transmissions regues de la carte intelilgente. 
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11. D^codeurselon la revendlcation 10, dans fequel le- 
dit module d'acc6s conditionnel (4) comprend un 
moyen (8) deBtjnd t renvoyer ladlte c(d alSatoire 
vers le d^codeur dans un second message cryptd 

5 avec une authentificatlon. 

12. Ddcodeur aelon fa revendlcation 11 » dans lequel le« 
dit moyen de generation (6) du ddcodeur g^n^re en 
outre un nombre aidatoJre qui est Indus dans (edit 

^0 premier message crypto, dans lequel le module 
d'acc^s conditionne) (4) est con9U pour utiliser ledIt 
nombre al6atolre en tant qu'authentlflcailon dans le 
second message crypto. 

16 
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8. Ddcodeur selon la revendlcation 7, dans lequel la- 
dita carte intelligenle (6) comprend un moyen (10) 
destine ^ renvoyer ladite cl6 al^atofre vers le mo- 
duie d'acc6s conditionnel dans un second message 
crypto avec une authentificatlon. 

8. oecodeur aelon la revandlceilon 8. dans lequel ledit 
moyen da gdndretion (8) du module d'acces condi- 35 
tlonnel (4) g6n*re en outre un nombre al6aioire qui 
est Indus dans ledit premier meesage crypt6. dans 
lequel la carte Intelilgente (5) est con^ue pour utili- 
ser ledit nombre aldaloiro entantqu'authentlflcaiion 
dans le second message cryptd. ^ 

10. Decodeur deetln^ h un syst&me de t6l6vls[pn 
payant, comprenant un module d'accds condition- 
nel (4) et une carte Intelilgente (5). dans lequel ledit 
decodeur comprend un moyen (6) destind ^ g*n6- <5 
rer une c\k aldatoire (CI), un moyen (6) destine k 
crypter ladite cle dans un premier message cryptd 
en utlllsant un procedd de cryptage a cl6 publlque. 
un moyen (6) dest!n6 1 transferer ledit premier mes- 
sage crypi6 vers le module d'accAs conditionnel (4), so 
tedit module d'accds conditionnel comprenant un 
moyen (8) destind k recevoir et k ddcrypter ledit pre- 
mier message crypte efin d*obtenlr ladite ct6 al6a- 
tolre, un moyen (8) destind k c/ypter des transmis- 
sions vers le d6codeur sous ledite cl6aieatolre. ledit 6S 
d6codeur comportant un moyen (8) pour d6crypter 
lesdites transmissions regues du module d'accds 
conditionnel. 



□CT-25-2005 07=03 



81669493916 



I 

p. 23 



25. Oct. 2005 1 9:42 S, YAMAMOTO OSAKA ' NO. 6088 P. 24/4! 



EP 0 891 670 B1 



4 



v.. 





I 




J 




CD 



o 

3ii 





-3' 



4 5^ 



t 



? 



\ 



I. 



OCT-25-2005 07:03 



81669493916 



P. 24 



25. Oct. 20 0 5 1 5:43 ' S. YAMAMOTO OSAKA NO. 6033 P. 25/41 



EP 0 891 670 B1 




8 



OCT-25-2005 07:03 



81669493916 



P. 25 



This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 

BEST AVAILABLE IMAGES 

Defective images within this document are accurate representations of the original 
documents submitted by the applicant. 

Defects in the images include but are not limited to the items checked: 

□ BLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 



Da BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 

□ LINES OR MARKS ON ORIGINAL DOCUMENT 
to^EFERENCE(S) OR EXHIBIT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 



IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 




FADED TEXT OR DRAWING 



